(Reuters) — The U.S. Justice Department said on Tuesday it had seized two Internet domains that had been used in spear-phishing attacks that mimicked email communications from the U.S. Agency for International Development.
The Justice Department said that it seized two command-and-control (C2) and malware distribution domains on May 28 after winning a court order to do so. The seizure was done in hopes of identifying groups that had been victimized and stopping future victimization.
Microsoft said last week that Nobelium, a Russian group which had been behind the SolarWinds cyberattack identified last year, had turned to targeting government agencies, think tanks, consultants, and non-governmental organizations.
“Friday’s court-authorized domain seizures reflect the FBI Washington Field Office’s continued commitment to cyber victims in our region,” said Assistant Director in Charge Steven D’Antuono of the FBI’s Washington Field Office.
Health Net, LLC, a Centene Corp. subsidiary, has been a victim of a cyberattack in which personal data of 1.2 million members was compromised, Becker’s Hospital Review reports. Cybercriminals were able to view or save the breached data that was stored by Accellion, Inc. between Jan. 7 and Jan. 25.